Container for an X.509 certificate. More...
#include <x509_crt.h>
Collaboration diagram for _x509_crt:
Data Fields | |
| x509_buf | raw |
| The raw certificate data (DER). | |
| x509_buf | tbs |
| The raw certificate body (DER). | |
| int | version |
| The X.509 version. | |
| x509_buf | serial |
| Unique id for certificate issued by a specific CA. | |
| x509_buf | sig_oid1 |
| Signature algorithm, e.g. | |
| x509_buf | issuer_raw |
| The raw issuer data (DER). | |
| x509_buf | subject_raw |
| The raw subject data (DER). | |
| x509_name | issuer |
| The parsed issuer data (named information object). | |
| x509_name | subject |
| The parsed subject data (named information object). | |
| x509_time | valid_from |
| Start time of certificate validity. | |
| x509_time | valid_to |
| End time of certificate validity. | |
| pk_context | pk |
| Container for the public key context. | |
| x509_buf | issuer_id |
| Optional X.509 v2/v3 issuer unique identifier. | |
| x509_buf | subject_id |
| Optional X.509 v2/v3 subject unique identifier. | |
| x509_buf | v3_ext |
| Optional X.509 v3 extensions. | |
| x509_sequence | subject_alt_names |
| Optional list of Subject Alternative Names (Only dNSName supported). | |
| int | ext_types |
| Bit string containing detected and parsed extensions. | |
| int | ca_istrue |
| Optional Basic Constraint extension value: 1 if this certificate belongs to a CA, 0 otherwise. | |
| int | max_pathlen |
| Optional Basic Constraint extension value: The maximum path length to the root certificate. | |
| unsigned char | key_usage |
| Optional key usage extension value: See the values in x509.h. | |
| x509_sequence | ext_key_usage |
| Optional list of extended key usage OIDs. | |
| unsigned char | ns_cert_type |
| Optional Netscape certificate type extension value: See the values in x509.h. | |
| x509_buf | sig_oid2 |
| Signature algorithm. | |
| x509_buf | sig |
| Signature: hash of the tbs part signed with the private key. | |
| md_type_t | sig_md |
| Internal representation of the MD algorithm of the signature algorithm, e.g. | |
| pk_type_t | sig_pk |
| Internal representation of the Public Key algorithm of the signature algorithm, e.g. | |
| void * | sig_opts |
| Signature options to be passed to pk_verify_ext(), e.g. | |
| struct _x509_crt * | next |
| Next certificate in the CA-chain. | |
Detailed Description
Container for an X.509 certificate.
The certificate may be chained.
Definition at line 57 of file x509_crt.h.
The documentation for this struct was generated from the following file:
